Skip to main content

NetID Lock Requests

The ability to lock NetID accounts is restricted to authorized personnel. Units requesting access to this ability will need to contact the Identity Security team and provide authorization from their supervisor, and if there is an approved business justification (criteria not published here), access will be granted.

Requesting A Lock

To request an account be locked immediately, it should be under one of the following scenarios:

  1. There is an active security incident and the NetID is being used for malicious activity
  2. A bug has caused the NetID to remain active without a valid university affiliation
  3. The NetID belongs to a person whose employment was terminated and the department wishes to restrict access immediately

In the case of an active security incident, NetID lock requests can be directed to security@tamu.edu. NetID lock requests related to a termination event can be directed to identity@tamu.edu, unless they involve a Technology Services employee; in that case, please coordinate with HR, who will authorize a lock in consultation with IT Security & Risk.

Termination Event Details

  1. "Regular" Termination Events: Amicable terminations (e.g. a resignation) and the NetID account of the specified individual will be deactivated via the automated processes within 24 hours of HR processing the termination in Workday. Access to things using college or departmental accounts is up to the owners of those resources to revoke access.

  2. "Sensitive" or "Urgent" Termination Events: Coordinate with your HR representative. Only HR may coordinate with IT Security & Risk for immediate deactivation of an employee NetID.

Employees Who Are Also Students

If the individual holds a student role and continues to do so after being terminated (whether they were a student employee or an FTE that was also a student), they will retain access to their NetID until 2 years after graduation for domestic students and 3.5 years for international students. Departmental IT staff must remove access accordingly and cannot rely on the NetID being locked in this scenario.

Criteria

  • Scenario 1: Security Operations or Incident & Operations Center personnel should take this action.
  • Scenario 2: Identity Security team members should address the issue.
  • Scenario 3: IT Security & Risk (normally Identity Security) will lock the account only with authorization from the HR representative.